Enforcing application and access control policies in an information management system with two or more interactive enforcement points
US8407345B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Oct 30, 2007 |
| Grant date | Mar 26, 2013 |
| Priority date | — |
| Expiry date | Mar 20, 2030 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/101
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus for controlling document access and application usage using centrally managed rules. The rules are stored and manipulated in a central rule database via a rule server. Policy enforcers are installed on client systems and/or on servers and perform document access and application usage control for both direct user document accesses and application usage, and application program document accesses by evaluating the rules sent to the policy enforcer. The rule server decides which rules are required by each policy enforcer. A policy enforcer can also perform obligation and remediation operations as a part of rule evaluation. Policy enforcers on client systems and servers can operate autonomously, evaluating policies that have been received, when communications have been discontinued with the rule server.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.